Fabrikar Fabrik vulnerabilities
2 known vulnerabilities affecting fabrikar/fabrik.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2010-1981P3MEDIUMCVSS 6.8PoCv2.02010-05-19
CVE-2010-1981 [MEDIUM] CWE-22 CVE-2010-1981: Directory traversal vulnerability in the Fabrik (com_fabrik) component 2.0 for Joomla! allows remote
Directory traversal vulnerability in the Fabrik (com_fabrik) component 2.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
nvd
CVE-2018-10727P4MEDIUMCVSS 6.1≤ 3.8.12019-10-29
CVE-2018-10727 [MEDIUM] CWE-79 CVE-2018-10727: Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrik
Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header.
nvd